EUVD-2015-8633

Malware in sbrugna...

Open Redirect

Overview typo3/cms is a free open source Content Management Framework. Affected versions of this package are vulnerable to Open Redirect via unspecified vectors. An attacker can embed Flash videos from external domains by exploiting the Flvplayer component. Remediation Upgrade typo3/cms to versio...

Cross site scripting

The Flvplayer component in TYPO3 6.2.x before 6.2.16 allows remote attackers to embed Flash videos from external domains via unspecified vectors, aka "Cross-Site Flashing."...